$ rpki-client -vvf rpki.apnic.net/member_repository/A91E22E3/7AA8943E170C11EF94F17C14C4F9AE02/60E63D04171011EFA738EE2BC4F9AE02.roa File: 60E63D04171011EFA738EE2BC4F9AE02.roa (raw, json) Hash identifier: iReDfLqRxfTZkPayNDNmZrUu0wmrLzIrP8Y6SS0tvkY= Subject key identifier: 7A:08:F8:C9:60:25:64:8C:12:E9:6B:8F:CD:61:8D:13:EE:73:18:FF Certificate issuer: /CN=A91E22E3/serialNumber=B78E7FE3CB2D4B5A1EB928A690BC6579DF881BE9 Certificate serial: 0B Authority key identifier: B7:8E:7F:E3:CB:2D:4B:5A:1E:B9:28:A6:90:BC:65:79:DF:88:1B:E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t45_48stS1oeuSimkLxled-IG-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E22E3/7AA8943E170C11EF94F17C14C4F9AE02/60E63D04171011EFA738EE2BC4F9AE02.roa Signing time: Wed 29 May 2024 22:13:47 +0000 ROA not before: Wed 29 May 2024 22:13:47 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 38495 IP address blocks: 166.65.180.0/22 maxlen: 22 166.65.180.0/23 maxlen: 23 166.65.182.0/23 maxlen: 23 166.65.184.0/21 maxlen: 21 166.65.184.0/22 maxlen: 22 166.65.188.0/22 maxlen: 22 166.65.192.0/21 maxlen: 21 166.65.192.0/22 maxlen: 22 166.65.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E22E3/7AA8943E170C11EF94F17C14C4F9AE02/t45_48stS1oeuSimkLxled-IG-k.crl rsync://rpki.apnic.net/member_repository/A91E22E3/7AA8943E170C11EF94F17C14C4F9AE02/t45_48stS1oeuSimkLxled-IG-k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t45_48stS1oeuSimkLxled-IG-k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E22E3/serialNumber=B78E7FE3CB2D4B5A1EB928A690BC6579DF881BE9 Validity Not Before: May 29 22:13:47 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6657a89b-3e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5f:d7:4f:f2:bd:79:71:bb:31:10:fc:c5:6b: af:21:0f:80:89:62:5a:27:de:59:95:03:fb:fe:55: 3e:ff:24:e2:e1:ed:c3:f1:64:b7:56:15:34:c3:bb: d0:4c:47:e9:aa:4f:c0:81:83:5a:a7:fc:5b:ee:c4: bb:7c:d5:6c:ad:7e:d3:7e:57:e3:4f:a5:ab:cd:43: ce:1d:f9:73:94:53:c0:59:df:d0:d6:32:53:7d:72: 90:ae:da:33:10:a2:0b:d3:f5:5d:04:c6:04:4e:13: 52:f0:97:44:c9:4d:24:43:3e:c0:26:d7:6f:cb:b6: 11:c6:67:e7:12:9b:72:3a:01:1b:ee:c1:a1:7c:19: f2:df:2f:03:c0:bf:ac:56:17:e1:e8:6c:90:ce:0d: 98:fc:83:60:9c:62:02:e0:47:c5:6b:d0:a2:28:69: a5:ef:ea:1c:88:27:fc:ba:02:35:d2:1e:c3:a0:0f: fb:15:75:f2:9f:f4:21:97:33:a7:d6:d0:43:16:ff: dc:99:f5:d6:1c:c7:fa:9b:2f:b1:57:89:ae:ec:02: c4:b5:4f:16:1c:a8:17:24:46:44:97:ac:91:95:61: ab:25:d6:09:90:e1:2b:b4:37:6c:2d:90:eb:45:12: d4:df:a4:66:ab:d1:c3:9b:12:59:cb:08:6d:be:4d: 31:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:08:F8:C9:60:25:64:8C:12:E9:6B:8F:CD:61:8D:13:EE:73:18:FF X509v3 Authority Key Identifier: keyid:B7:8E:7F:E3:CB:2D:4B:5A:1E:B9:28:A6:90:BC:65:79:DF:88:1B:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E22E3/7AA8943E170C11EF94F17C14C4F9AE02/t45_48stS1oeuSimkLxled-IG-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t45_48stS1oeuSimkLxled-IG-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E22E3/7AA8943E170C11EF94F17C14C4F9AE02/60E63D04171011EFA738EE2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 166.65.180.0-166.65.199.255 Signature Algorithm: sha256WithRSAEncryption 05:20:88:9c:bf:ca:70:6d:07:c6:3b:f2:81:51:ee:17:81:a0: bb:96:07:f4:55:6d:4c:44:51:40:a7:25:71:18:7e:d7:c7:5e: 5f:fd:fb:bc:e3:fd:4e:80:6a:06:0b:4e:f9:dd:0e:d6:d2:ab: ed:00:a1:fe:96:67:73:c4:a1:64:49:81:bb:af:66:fd:62:ed: ea:62:7b:72:cc:7a:a6:a0:37:94:6d:64:0b:31:b4:6f:20:dd: de:9b:95:f2:03:30:78:d2:c3:a9:2d:75:46:6e:04:c3:02:3c: 17:fb:0c:97:c0:61:b6:ec:51:c8:d2:d6:90:fe:25:01:44:33: 49:76:69:6a:ae:f6:b9:e4:d4:d9:b2:5d:7d:f9:3a:7c:16:7b: ee:2c:ee:b8:7f:95:a5:88:45:cd:c7:3c:cd:89:d6:12:c9:03: e1:17:5b:38:a3:d4:1f:ea:f5:0a:a7:7a:ec:1d:0f:1e:d1:8c: fc:64:c6:92:9a:dd:a9:e5:01:31:69:bf:29:ac:90:f2:d9:28: 3a:76:0c:9a:50:43:7f:0c:17:8b:38:f1:24:bf:0a:f1:cf:1f: 48:2d:b8:94:95:5a:a0:90:6b:45:70:81:09:7d:3f:ac:4c:72: d0:50:3c:1d:d6:e9:13:11:76:80:3c:f3:8f:17:1f:f0:37:e3: 36:6d:f6:c5 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MjJFMzExMC8GA1UEBRMoQjc4RTdGRTNDQjJENEI1QTFFQjkyOEE2OTBCQzY1NzlE Rjg4MUJFOTAeFw0yNDA1MjkyMjEzNDdaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTdhODliLTNlMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3X9dP8r15cbsxEPzFa68hD4CJYlon3lmVA/v+VT7/JOLh7cPxZLdWFTTDu9BM R+mqT8CBg1qn/FvuxLt81WytftN+V+NPpavNQ84d+XOUU8BZ39DWMlN9cpCu2jMQ ogvT9V0ExgROE1Lwl0TJTSRDPsAm12/LthHGZ+cSm3I6ARvuwaF8GfLfLwPAv6xW F+HobJDODZj8g2CcYgLgR8Vr0KIoaaXv6hyIJ/y6AjXSHsOgD/sVdfKf9CGXM6fW 0EMW/9yZ9dYcx/qbL7FXia7sAsS1TxYcqBckRkSXrJGVYasl1gmQ4Su0N2wtkOtF EtTfpGar0cObElnLCG2+TTHDAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUegj4yWAl ZIwS6WuPzWGNE+5zGP8wHwYDVR0jBBgwFoAUt45/48stS1oeuSimkLxled+IG+kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyMkUzLzdBQTg5NDNFMTcw QzExRUY5NEYxN0MxNEM0RjlBRTAyL3Q0NV80OHN0UzFvZXVTaW1rTHhsZWQtSUct ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdDQ1XzQ4c3RTMW9ldVNpbWtMeGxlZC1JRy1rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjJFMy83QUE4OTQzRTE3MEMxMUVGOTRGMTdDMTRDNEY5QUUwMi82MEU2M0QwNDE3 MTAxMUVGQTczOEVFMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQCpkG0AwQDpkHAMA0GCSqGSIb3DQEBCwUAA4IBAQAFIIic v8pwbQfGO/KBUe4XgaC7lgf0VW1MRFFApyVxGH7Xx15f/fu84/1OgGoGC0753Q7W 0qvtAKH+lmdzxKFkSYG7r2b9Yu3qYntyzHqmoDeUbWQLMbRvIN3em5XyAzB40sOp LXVGbgTDAjwX+wyXwGG27FHI0taQ/iUBRDNJdmlqrva55NTZsl19+Tp8FnvuLO64 f5WliEXNxzzNidYSyQPhF1s4o9Qf6vUKp3rsHQ8e0Yz8ZMaSmt2p5QExab8prJDy 2Sg6dgyaUEN/DBeLOPEkvwrxzx9ILbiUlVqgkGtFcIEJfT+sTHLQUDwd1ukTEXaA PPOPFx/wN+M2bfbF -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:25 2024 by rpki-client on console-fra.rpki-client.org